<?php
/*
 * Author:YangBo Created on 2009-1-16:����01:39:02
 * 
 * TODO:TODO
 * AlbumShare2009
 * package_declaration package_name
 * 
 */
 class UserController extends AppController
 {
 	var $uses = array('user');
 	
 	public function index()
 	{
 		
 	}
 	
 	public function login()
 	{
 		 //Don't show the error message if no data has been submitted.
 		 $this->set('error',false);
 		 // If a user has submitted form data:
 		 if(!empty($this->data))
 		 {
 		 	 // First, let's see if there are any users in the database
             // with the username supplied by the user using the form:
			 $someone = $this->user->findByUsername($this->data['User']['username']); 
			 // At this point, $someone is full of user data, or its empty.
             // Let's compare the form-submitted password with the one in
             // the database.  
             if(!empty($someone['User']['password']) && $someone['User']['password'] == $this->data['User']['password'])
             {
             	// Note: hopefully your password in the DB is hashed,
                // so your comparison might look more like:
                // md5($this->data['User']['password']) == ...
                // This means they were the same. We can now build some basic
                // session information to remember this user as 'logged-in'.
                $this->Session->write('User',$someone['User']);
                // Now that we have them stored in a session, forward them on
                // to a landing page for the application. 
                $this->redirect('/clients');
             }      
             // Else, they supplied incorrect data:
             else
             {
             	// Remember the $error var in the view? Let's set that to true:
             	$this->set('error',true);
             }  
 		 }
 		 
 	}
 	
 	public function logout()
 	{
 		 // Redirect users to this action if they click on a Logout button.
         // All we need to do here is trash the session information:
         $this->Session->delete('User');
         // And we should probably forward them somewhere, too...
         $this->redirect('/');  
 	}
 	
 	public function reset()
 	{
 		
 	}
 }
?>
